Security firm publishes video of Google AdWords scam

Powered by SC Magazine
 

Evidence posted on YouTube.

Security software firm Exploit Prevention Labs has published a video which it claims proves that cyber-criminals are using Google's AdWords to infect unsuspecting users with malware.

The firm claimed last week to have hard evidence that the exploit was being carried out.

The Nailed in 30 Seconds video has been posted on YouTube and claims to show how cyber-criminals ran Google ads for legitimate trusted organisations like the Better Business Bureau

However, when users clicked on the ads, they were redirected to a malicious website that attempted to exploit a common security vulnerability in Internet Explorer.

Users who had not installed Microsoft's latest security patches were infected with a so-called post-logger, malware designed to steal confidential account access information, in this case from customers of 100 different banks.

"The Google attack signals an escalation in the tactics used to take advantage of unpatched vulnerabilities in common software programs," said Roger Thompson, chief technology officer at Exploit Prevention Labs.

"Exploits are threatening to undermine user trust in even the most widely used websites like Google, Yahoo and MSN."

Copyright ©v3.co.uk


Security firm publishes video of Google AdWords scam
 
 
 
Top Stories
Meet FABACUS, Westpac's first computer
GE225 operators celebrate gold anniversary.
 
NSW Govt gets ready to throw out the floppy disks
[Opinion] Dominic Perrottet says its time for government to catch up.
 
iiNet facing new copyright battle with Hollywood
Fighting to protect customer details.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  26%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  21%
 
End user computing (desktops, mobiles, apps)
  15%
 
Software development
  26%
TOTAL VOTES: 337

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  57%
 
No
  43%
TOTAL VOTES: 140

Vote